Amendments to the Claims 
Kindly replace the pending claims with the following listed claims: 
Claims 1-35 (cancelled). 

36. (currently amended) A method of applying an operation access privilege to at 
least a logical portion of a logical storage medium in communication with a computer, the 
method comprising the steps of: 

(a) providing an end use r operation access privilege indicative of at least one of an 
enabled operation and/or a restricted operation to be performed on at least one logical portion 
of a logical storage medium obviating a n e ed for a r e s e nt e d portion of said logical storage 
m e dium ; 

(b) associating said operation access privilege with at least one logical portion of 
said logical storage medium; 

(c) applying said acce s s privileg e to at least one data identifier intercepting in a 
trap laver an attempted operation on said at least one logical portion identified bv at least one 
data identifier ; and 

(d) providing a trap lav e r at least one of allowing said attempted operation if 

matching said enabled operation, and/or denying said attempted operation if matching said 
restricted operation . 

37. (currently amended) The method as defined in claim 36, wherein said at 
least one logical portion of said logical storage medium comprises at least one of a volume, a 
partition, a directory, a special file, and/ or a file. 
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38. (previously presented) The method as defined in claim 36, wherein said at 
least one logical portion of said logical storage medium comprises an entire logical storage 
medium. 



39. (currently amended) The method as defined in claim 36, wherein said at least 
one data identifier comprises at least one of a file name, a file mask, a special file, and/or a 
directory. 



40. (currently amended) The method as defined in claim 36, wherein said 
operations comprise at least one of reading, executing, appending, creating new objects, 
deleting, renaming, moving, overwriting, modifying attributes, and/ or modifying data object 
security. 

41 . (currently amended) The method as defined in claim 36, further comprising: 
(e) applying a plurality of operation access privileges to said at least one data 

identifier. 



42. (currently amended) The method as defined in claim 36, further comprising: 
(e) applying a plurality of operation access privileges to said logical p ortion of 

said logical storage medium. 

43. (currently amended) The method as defined in claim 36, further comprising: 
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(e) applying said operation access privilege to said logical storage medium 
wherein said logical storage medium is itself a logical portion of another logical storage 
medium, and wherein a logical portion of said another logical storage medium is specified by 
at least one data identifier. 

44. (currently amended) The method as defined in claim 3643, wherein said at 
least one data identifier comprises a free space portion. 

45. (currently amended) The method as defined in claim 3643, wherein said at 
least one data identifier comprises newly created data. 

46. (currently amended) A system for applying an operation access privilege to at 
least a logical portion of a logical storage medium in communication with a computer, the 
system comprising: 

providing means for providing an end use r operation access privilege indicative of at 
least one of an enabled operation and/or a restricted operation to be performed on at least a 
logical portion of a logical storage medium obviating a ne e d for a r e s e rv e d portion of said 
logical storag e m e dium ; 

associating means for associating said operation access privilege with at least one 
logical portion of said logical storage medium; 

applying means for applying said acc e ss privil e g e to at l e ast on e data 
identifie r interception means for intercepting in a trap layer an attempted operation on 
said at least one logical portion identified bv at least one data identifier : and 
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at least one of allowing means for allowing said attempted operation if matching said 
enabled operation, and/or denial means for denying said attempted operation if 
matching said restricted operation p roviding means for providing a trap layer , 

47. (currently amended) The system as defined in claim 46, wherein said at least 
one logical portion of said logical storage medium comprises at least one of a volume, a 
partition, a directory, a special file, and/ or a file. 

48. (previously presented) The system as defined in claim 46, wherein said at least 
one logical portion of said logical storage medium comprises an entire logical storage 
medium. 

49. (currently amended) The system as defined in claim 46, wherein said at least 
one data identifier comprises at least one of a file name, a file mask, a special file, and/ or a 
directory. 

50. (currently amended) The system as defined in claim 46, wherein said 
operations comprise means for at least one of reading, executing, appending, creating new 
objects, deleting, renaming, moving, overwriting, modifying attributes, and/ or modifying data 
object security. 

5 1 . (currently amended) The system as defined in claim 46, further comprising: 
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means for applying a plurality of operation access privileges to said at least one data 
identifier. 

52. (currently amended) The system as defined in claim 46, further comprising: 
means for applying a plurality of operation access privileges to said portion of said 

logical storage medium. 

53. (currently amended) The system as defined in claim 46, further comprising: 
means for applying said operation access privilege to said logical storage medium 

wherein said logical storage medium is itself a logical portion of another logical storage 
medium, and wherein a logical portion of said another logical storage medium is specified by 
at least one data identifier. 

54. (previously presented) The system as defined in claim 46, wherein said at least 
one data identifier comprises a fi'ee space portion. 

55. (previously presented) The system as defined in claim 46, wherein said at least 
one data identifier comprises newly created data. 

56. (currently amended) A computer program product embodied on a computer 
readable media wherein the computer program product comprises logic which when executed 
performs the following method of applying an operation a ccess privilege to at least a logical 
portion of a logical storage medium in communication with a computer, the method 
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comprising the steps of: 

(a) providing an e nd us e r operation access privilege indicative of at least one of an 
enabled operation and/or a restricted operation to be performed o n at least a logical portion of 
a logical storage medium obviating a need for a reserved portion of said logical storage 
medium ; 

(b) associating said operation a ccess privilege with at least one logical portion of 
said logical storage medium; 

(c) intercepting in a trap layer an attempted operation on said at least one logical 
portion identified by at least one data identifier applying said access privilege to at least one 
data id e ntifier ; and 

(d) at least one of allowing said attempted operation if matching said enabled 
operation, and/or denying said attempted operation if matching said restricted 
operatio np roviding a trap layer . 

57. (currently amended) The computer program product as defined in claim 56, 
wherein said at least one logical portion of said logical storage medium comprises at least one 
of a volume, a partition, a directory, a special file, and/ or a file. 

58. (previously presented) The computer program product as defined in claim 56, 
wherein said at least one logical portion of said logical storage medium comprises an entire 
logical storage medium. 

59. (currently amended) The computer program product as defined in claim 56, 
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wherein said at least one data identifier comprises at least one of a file name, a file mask, a 
special file, and/ or a directory. 

60. (currently amended) The computer program product as defined in claim 56, 
wherein said operations comprise at least one of reading, executing, appending, creating new 
objects, deleting, renaming, moving, overwriting, modifying attributes, and/ or modifying data 
object security. 

61 . (currently amended) The computer program product as defined in claim 56, 
wherein the method further comprises: 

(e) applying a plurality of operation access privileges to said at least one data 
identifier. 

62. (currently amended) The computer program product as defined in claim 56, 
wherein the method further comprises: 

(e) applying a plurality of operation a ccess privileges to said portion of said 
logical storage medium. 

63. (currently amended) The computer program product as defined in claim 56, 
wherein the method further comprises: 

(e) applying said operation access privilege to said logical storage medium 
wherein said logical storage medium is itself a logical portion of another logical storage 
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medium, and wherein a logical portion of said another logical storage medium is specified by 
at least one data identifier. 

64. (previously presented) The computer program product as defined in claim 56, 
wherein said at least one data identifier comprises a free space portion. 

65. (previously presented) The computer program product as defined in claim 56, 
wherein said at least one data identifier comprises newly created data. 

66. (new) The method according to claim 36, wherein said operation access 
privilege comprises a file input/output (I/O) operation access privilege. 
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